Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2016-05-06 21:19:04 |
Researchers discover ICS attack method that spreads through networks (lien direct) |
A team of researchers discover a new method of launching attacks that would threaten global critical infrastructure and utility providers through a worm that spreads through utility networks. |
|
|
★★★
|
|
2016-05-06 18:32:11 |
\'Forensic expert\' helped LAPD hack iPhone of \'Shield\' actor\'s murdered wife (lien direct) |
Los Angeles police detectives bypassed an iPhone security feature that prevents access to content on disabled phones, according to a report, citing court papers reviewed by the news daily. |
|
|
|
|
2016-05-06 14:59:26 |
Educating C-suites and corporate boards on security risks (lien direct) |
C-suites and boards of directors are increasing their knowledge of IT security risks and needs - before a breach happens. |
|
|
★★★
|
|
2016-05-05 20:48:05 |
Android/Clicker.G malware found in Google Play apps (lien direct) |
Researchers found a series of malicious apps containing Android/Clicker.G on the Google Play store. The campaign targets mobile devices in Russia, but they affect apps that are available globally. |
|
|
|
|
2016-05-05 20:36:03 |
Tech groups present \'Technology Sector Presidential Platform\' to candidates (lien direct) |
The leaders of a group of tech industry associations asked the presidential candidates to strengthen the United States' cybersecurity posture, and attached a "Technology Sector Presidential Platform" that lays out recommendations. |
Guideline
|
|
|
|
2016-05-05 20:34:58 |
Hacker pranks \'stupid\' Locky distributor, but ransomware threat keeps growing (lien direct) |
A vigilante hacker turned the tables on a major Locky ransomware distributor, after hacking into its command and control server and swapping out the malicious payload with a script that contains the message "Stupid Locky." |
|
|
|
|
2016-05-05 17:30:00 |
Tribune Media\'s ProSportsDaily Forum site breached (lien direct) |
Tribune Media's ProSportsDaily notified the California Attorney General's Office Wednesday of a data breach that compromised login credentials and likely other user information. |
|
|
|
|
2016-05-04 20:00:00 |
Anonymous \'Operation Icarus\' launches DDoS attack against Bank of Greece (lien direct) |
Anonymous launched an attack against the Bank of Greece as part of a 30-day campaign targeting central banks across the world. |
|
|
★★★
|
|
2016-05-04 15:59:24 |
OpenSSL patches memory corruption and unauthorized decryption vulnerabilities (lien direct) |
OpenSSL has issued as a series of patches in conjunction with the disclosure yesterday of six vulnerabilities, including two of high severity. |
|
|
|
|
2016-05-04 13:00:00 |
Localized "designer" malware campaigns all the rage, says Sophos (lien direct) |
Criminal outfits are increasingly distributing "designer" spam and malware, customized to optimally target victims in specific geographic regions, according to new research from Sophos' research division, SophosLabs. |
|
|
|
|
2016-05-03 18:33:30 |
Gozi malware creator cuts deal, gets time served and $7M fine (lien direct) |
Gozi banking malware creator Nikita Kuzmin sentenced to time served and a $7 million fine as the U.S. Attorney's office tells judge Kuzmin provided "substantial assistance" to the government. |
|
|
★★
|
|
2016-05-03 15:37:22 |
READY FOR EDIT WhatsApp shut down in Brazil affecting 100M (lien direct) |
A judge in Brazil ordered mobile phone operators to shutter the WhatsApp chat service for three days. |
|
|
★★★★★
|
|
2016-05-03 14:58:16 |
Three-peat for UCF in college cyber challenge (lien direct) |
For the third year in a row, The University of Central Florida has come out on top in the National Collegiate Cyber Defense Competition. |
|
|
|
|
2016-05-03 12:00:00 |
Market forces: Supply and demand (lien direct) |
The market, not government regulation, will push IoT security to a higher standard, says John Ellis of Ellis & Associates. |
|
|
★★
|
|
2016-05-02 18:29:41 |
1,206 Solano Community College employees victimized in W-2 data breach (lien direct) |
Solano Community College in Fairfield, Calif. was hit with a spearphishing attack led to the W-2 information for about 1,200 staffers being compromised. |
|
|
|
|
2016-05-02 16:00:00 |
Slack users expose corporate credentials while creating new \'bot\' tools (lien direct) |
Developers using the corporate messaging tool Slack are carelessly including their Slack tokens (aka credentials) within the coding of newly created automated business tools known as "Slack bots," according to Detectify's research labs division. |
|
|
★★★
|
|
2016-05-02 15:33:34 |
Tick cybergang uses custom malware to target Japanese websites (lien direct) |
Symantec researchers spotted a cyberespionage group dubbed "Tick" spreading custom malware through compromised Japanese websites. |
|
|
|
|
2016-05-02 15:31:10 |
Bernie Sanders drops DNC suit after probe confirms campaign\'s claims (lien direct) |
After an investigation confirmed that data was exported during a December breach of the DNC voter file system but cleared the Sanders campaign of wrongdoing, the presidential hopeful withdrew a lawsuit it had filed against the DNC. |
|
|
|
|
2016-05-02 15:17:35 |
Squiblydoo exploits Microsoft OS to remotely run script (lien direct) |
Squiblydoo may sound like a crossover episode featuring Squidward and Scooby Doo, but researchers at Carbon Black say Squiblydoo is actually a brand new and very potent exploitation technique. |
|
|
|
|
2016-05-02 14:51:57 |
Miami programmer facing jail for hacking frequent flyer accounts (lien direct) |
A computer programmer was charged with purloining the frequent flier accounts of American Airlines customers to treat himself to more than $260,000 worth of global travel and car rentals |
|
|
|
|
2016-05-02 10:00:00 |
News briefs: May 2016 (lien direct) |
Some of the latest news from the IT security industry. |
|
|
|
|
2016-05-02 10:00:00 |
Speak the board\'s language or get fired (lien direct) |
A communication gap exists today between CISOs and the board of directors, says Feris Rifai, CEO, Bay Dynamics. |
|
|
|
|
2016-05-02 10:00:00 |
Government surveillance from Caesar to Nixon (lien direct) |
Government surveillance is, however, not new, says Patrick O'Kane, barrister and compliance counsel. |
|
|
|
|
2016-04-29 21:59:06 |
Top NFL prospect free falls in draft after apparent hacker posts damaging video, texts (lien direct) |
Minutes before the NFL Draft commenced on Thursday night, an apparent hacker accessed the Twitter account of top prospect Laremy Tunsil and posted an old video of the Ole Miss player smoking from a bong, damaging his value. |
|
|
|
|
2016-04-29 18:00:00 |
Judge ruled go ahead for claims of phone hacking against UK tabloid (lien direct) |
High Court judge Mr. Justice Mann has ruled the go ahead for claims against The Sun newspaper for phone hacking. |
|
|
|
|
2016-04-29 15:15:47 |
Prognosis Negative for American Dental Association (lien direct) |
Malware embedded on a USB drive was delivered to members of the American Dental Association (ADA). |
|
|
★★
|
|
2016-04-29 15:00:00 |
Turkish fascists claim responsibility for Qatar bank data breach (lien direct) |
Qatar National bank has had 1.4 GB of internal files published online including the names of intelligence agents, government departments and the Qatari royal family. A turkish fascist group has claimed responsibility. |
|
|
★★
|
|
2016-04-28 19:36:32 |
PCI DSS version 3.2 release extends multifactor authentication requirement (lien direct) |
The PCI Data Security Standard version 3.2 released Thursday not only includes new requirements to safeguard payment data, including multifactor authentication. |
|
|
|
|
2016-04-28 19:30:00 |
RSA EMEA Summit: Writing a security strategy that will make Vivaldi proud (lien direct) |
Richard Nichols, RSA's head of EMEA strategy compared playing the violin to conducting an effective security strategy, to encourage businesses to harmonise security strategy and promote greater visibility of threats on the business. |
|
|
|
|
2016-04-28 17:00:00 |
Trade secret anti-theft bill passes House, awaits Obama\'s signature (lien direct) |
The U.S. House yesterday passed the Defend Trade Secrets Act of 2015, which creates a single U.S. standard for protecting companies from intellectual property theft through civil recourse against the offending parties in federal court. |
|
|
★★★★
|
|
2016-04-28 17:00:00 |
RSA Summit: Gibson urges information sharing to beat ransomware (lien direct) |
The director of CERT UK laid out some of the problems facing UK cyber-space and outlined what cyber-security could do to help fix them. |
|
|
★★★
|
|
2016-04-28 16:40:00 |
EFF revises IM scorecard ratings after pen testers spot vulnerabilities (lien direct) |
The EFF is revising its IM scorecard after a pair of researchers spotted vulnerabilities in platforms previously rated safe. |
|
|
|
|
2016-04-28 13:59:46 |
Survey: Wearable devices most likely to pose IoT security threat (lien direct) |
Wearables are the Internet of Things (IoT) devices most likely to emerge as a security threat or cause a breach, according to a new survey by Spiceworks and Cox Business. |
|
|
|
|
2016-04-27 19:45:00 |
Budget approval sought for training U.S. cybersecurity troops (lien direct) |
Lawmakers are requesting an addendum to a defense authorization bill to mandate specialized training for U.S. cybersecurity troops engaged in war games. |
|
|
|
|
2016-04-27 19:45:00 |
PLATINUM gang exploited Microsoft \'hotpatching\' support to mask activities (lien direct) |
The PLATINUM team has "gone to great lengths" over many years "to develop covert techniques" so their cyber-espionage campaigns will evade detection, even using Windows's support for "hotpatching" against it. |
|
|
|
|
2016-04-27 19:30:00 |
FBI won\'t reveal method used to crack iPhone, alerts Apple to iPhone, Mac flaws (lien direct) |
The Federal Bureau of Investigation won't share the method that was used to unlock an iPhone 5c used by one of the San Bernardino shooters because the mechanism belongs to the third party who cracked the phone. |
|
|
|
|
2016-04-27 19:02:24 |
Over 7M Minecraft mobile credentials exposed after Lifeboat data breach (lien direct) |
Lifeboat Network, which runs servers for Minecraft Pocket Edition — the smartphone version of the immensely popular video game Minecraft — was hacked in January 2016, resulting in a data breach compromising 7 million-plus gamers. |
|
|
|
|
2016-04-27 17:55:30 |
Firefox patches issued, one critical (lien direct) |
Mozilla released 10 security advisories affecting its Firefox open-source web browser. |
|
|
|
|
2016-04-27 15:15:00 |
CyberCenturion crown goes to team from Gibraltar (lien direct) |
A team from Gibraltar won the final round of the CyberCenturion 2016 competition held at Bletchley Park's National Museum of Computing today. |
|
|
|
|
2016-04-27 15:00:00 |
73% of global brands and organisations hit with DDoS attack in 2015 (lien direct) |
With the bombardment of DDoS attacks fairly consistent worldwide throughout 2015, it's no longer a matter of if or when attacks might happen, but how often and how long the attack will last. |
|
|
|
|
2016-04-26 21:30:00 |
Locky ransomware spotted using Javascript downloader (lien direct) |
FireEye researchers observed a Locky ransomware campaign that used Javascript downloaders to infect users rather than macro- or binary-based downloaders. |
|
|
|
|
2016-04-26 21:29:26 |
Retailers believe breach detection is sufficient, but gap yawns wide (lien direct) |
Retailers believe they can detect a data breach in a week or less, a new survey commissioned by Tripwire revealed, while another report by Arbor Network showed it takes them on average 197 days to spot advanced threats. |
|
|
|
|
2016-04-26 21:13:31 |
Next up. A look at Locky Ransomware (lien direct) |
We've been examining some of the newer - or, at least, most currently prevalent - strains of ransomware. This time we look at Locky. |
|
|
|
|
2016-04-26 21:11:28 |
Facebook social login bug, now fixed, exposed account holders to potential ID theft (lien direct) |
Facebook has updated its social login process after a security firm found a bug that could have enabled adversaries to steal victims' online identities. |
|
|
|
|
2016-04-26 20:54:06 |
Possible 1.4GB data breach at Qatar National Bank (lien direct) |
The Qatar National Bank is investigating a possible massive data breach with more than 15,000 files, or 1.4GB of data, being compromised. |
|
|
|
|
2016-04-26 18:00:00 |
Defense to judge: Make feds disclose hacking technique in child porn case or dismiss charges (lien direct) |
More than two months after a federal judge ruled the U.S. must privately disclose the hacking technique the FBI used to identify patrons of the child porn site Playpen, lawyers have filed a motion urging the case be dismissed if the government does not comply or drop the charges. |
|
|
|
|
2016-04-26 15:30:00 |
Clapper unhappy that Snowden sped up encryption by 7 years (lien direct) |
James Clapper, director of national intelligence has blamed the NSA whistleblower Edward Snowden for making it harder for the US to monitor and arrest terrorists by advancing the development of more advanced and widely available encryption. |
|
|
|
|
2016-04-26 12:30:00 |
Report: Ransomware feeds off poor endpoint security (lien direct) |
Poor endpoint security practices are propelling the great ransomware epidemic of 2016 — and if allowed to fester, the threat will spread to new endpoints including IoT devices, cars and ICS and SCADA systems, a new report said. |
|
|
|
|
2016-04-25 21:49:34 |
Clapper: U.S. mulling ways to disclose info on Americans caught up in gov\'t spy net (lien direct) |
The U.S. government is mulling ways it might disclose the number of Americans who have been caught up in government surveillance under the Prism program, set to expire in 2017. |
|
|
|
|
2016-04-25 17:19:20 |
Georgia couple pleads guilty in IRS \'Get Transcript\' data breach (lien direct) |
A Georgia couple pleaded guilty for their role in the IRS 'Get Transcript' data breach that compromised 700,000 accounts. |
Guideline
|
|
|